Menu
▾
▴
Re: [Trustedjava-support] Setup for jTss and jTPMTools
|
From: Ronald T. <ron...@ia...> - 2009-12-01 16:26:23
|
Hi Hardeep, This I replied to a similar question some while back: You are right, you need to complete the .ini files before you can use jTSS. Select the components of your choice for log file and persistent storage and create the folders in the file system (with proper access rights for the user/root) you intend to use and fill in the paths in the ini files. For TSP-TCS communications you can either choose local bindings (i.e. direct method calls) or SOAP bindings. For the later you need to install the system daemon before using it. For local bindings (recommended for testing) you either need root privileges to access the TPM, or to allow access to /dev/tpm. Please, also note that the test-suite uses the hardcoded owner password "opentc", encoded as UTF-16LE without terminating zero. Other tools than jTpmtools might fail to use the correct encoding. Now, on your specific questions: For the user persistent storage it is a good idea to use some path in your home directory. i.e. /home/rtoegl/.jtss/storage/user For the system persistent storage you could use /home/rtoegl/.jtss/storage/system with local bindings (i.e. for testing/experiments) or some path in some /var/lib/jtss/storage/system (depending on your distribution) if you use SOAP. The database varint is a bit more stable than the file storage. BTW, SOAP provides inter-process communication between TSP and TCS. If you need a log file of your extend events, you should use the file variant, else it does not matter and you can just use the in-memory logger for testing. Finally, we offer a rather untested tool to import keys you created in trousers to the jTSS persistent storage. If you don't create and store keys with TrouSerS for using them in Java, you will not need to do this. :-) hth, Ronald Hardeep Uppal wrote: > Hi, > > I am trying to setup IAIK jTSS stack to use jTPMTools. I am new to all > this and I am not sure how to configure jtss_tcs.ini and jtss_tsp.ini. > I currently have TrustedGrub running on my Dell Latitude e5400 with a > Broadcom TPM 1.2. I am using trousers and tpm-tools to do admin stuff > for the tpm. I am trying to use jTPMTools to create aik and sign pcr > values. > > What should the file path for persistent storage be when not using a > database? Does it matter if I use text files or in-memory for the > event manager? Do I need SOAP and what is it trying to do? Do I need > to store trousers persistent storage to jTSS? > > Thanks > --Hardeep -- Dipl.-Ing. Ronald Tögl phone +43 316/873-5502 Trusted Computing Labs fax +43 316/873-5520 IAIK ron...@ia... Graz University of Technology http://www.iaik.tugraz.at |
